Fedora 7 : python-2.5-14.fc7 (2007-2663)

This update fixes: Multiple integer overflows in the imageop module 295971 Also included are a dependency fix on binutils 307221, so the ctypes module works, and a tkinter fix when dealing with zero length text in some widgets 281751. Note that Tenable Network Security has extracted the preceding...

Debian DSA-1399-1 : pcre3 - several vulnerabilities

Tavis Ormandy of the Google Security Team has discovered several security issues in PCRE, the Perl-Compatible Regular Expression library, which potentially allow attackers to execute arbitrary code by compiling specially crafted regular expressions. Version 7.0 of the PCRE library featured a majo...

openSUSE 10 Security Update : ImageMagick (ImageMagick-4543)

This update of ImageMagick fixes several vulnerabilities. - CVE-2007-4985: infinite loop while parsing images - CVE-2007-4986: integer overflows that can lead to code execution - CVE-2007-4987: one-byte buffer overflow that can lead to code execution SLES8- and SLES9-based products are not affect...

openSUSE 10 Security Update : flac (flac-4571)

Multiple integer overflows in flac could potentially be exploited by attackers via specially crafted files to execute code in the context of the user opening the file CVE-2007-4619. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

ImageMagick: Multiple vulnerabilities

Background ImageMagick is a collection of tools and libraries for manipulating various image formats. Description regenrecht reported multiple infinite loops in functions ReadDCMImage and ReadXCFImage CVE-2007-4985, multiple integer overflows when handling certain types of images CVE-2007-4986,...

openSUSE 10 Security Update : NX (NX-4555)

The XFree code contained in NX was prone to integer overflows CVE-2006-1861 and insufficiently protected against specially crafted PCF files CVE-2006-3467. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3978)

This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...

openSUSE 10 Security Update : imlib2-loaders (imlib2-loaders-2265)

Various security problems have been fixed in the imlib2 image loaders : CVE-2006-4809: A stack-based buffer overflow in loaderpnm.c could be used by attackers to execute code by supplying a handcrafted PNM image. CVE-2006-4808: A heap buffer overflow in loadertga.c could potentially be used by...

openSUSE 10 Security Update : qt3 (qt3-2189)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

openSUSE 10 Security Update : gimp (gimp-3995)

Multiple gimp import filters contained integer overflows. Attackers could exploit that to potentially execute code by tricking users into opening specially crafted files CVE-2006-4519. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

openSUSE 10 Security Update : xmms (xmms-3073)

Two integer overflows when processing BMP skin images potentially allows attackers to execute arbitrary code via specially crafted files CVE-2007-0653,CVE-2007-0654. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

openSUSE 10 Security Update : gd (gd-3896)

This update fixes multiple integer overflows in the gd library. Specially crafted files could leverage them to at least crash gd based applications CVE-2007-3472, CVE-2007-3475, CVE-2007-3476, CVE-2007-3477, CVE-2007-3478. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...

openSUSE 10 Security Update : xorg-x11-server (xorg-x11-server-3082)

Integer overflows in the XC-MISC extension of the X-server could potentially be exploited to execute code with root privileges CVE-2007-1003. Integer overflows in libX11 could cause crashes CVE-2007-1667. Integer overflows in the font handling of the X-server could potentially be exploited to...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3979)

This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...

openSUSE 10 Security Update : freetype2 (freetype2-1608)

Fixes for: CVE-2006-0747, CVE-2006-1054, CVE-2006-1861, CVE-2006-2493, CVE-2006-2661. This patch fixes a few integer overflows in freetype 2. Without this patch it is possible to create font files which make freetype 2 crash. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

openSUSE 10 Security Update : wv (wv-2279)

Two integer overflows were found in the Microsoft Word converter library 'wv', which could potentially be used to crash programs using this library or to even execute code. - A LVL Count Integer Overflow Vulnerability was fixed. - A LFO Count Integer Overflow Vulnerability was fixed. Both problem...

openSUSE 10 Security Update : qt (qt-2188)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

openSUSE 10 Security Update : imlib2-loaders (imlib2-loaders-2244)

Various security problems have been fixed in the imlib2 image loaders : CVE-2006-4809: A stack-based buffer overflow in loaderpnm.c could be used by attackers to execute code by supplying a handcrafted PNM image. CVE-2006-4808: A heap buffer overflow in loadertga.c could potentially be used by...

libFlac / WinAMP multiple integer overflows

Multiple integer overflows on FLAC sound format parsing...

CVE-2007-4619

Multiple integer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer...